Quantitative Verification and Synthesis of Attack-Defence Scenarios Conference

Zaruhi Aslanyan; Flemming Nielson; David Parker

doi:10.1109/CSF.2016.15

Quantitative Verification and Synthesis of Attack-Defence Scenarios Conference

Zaruhi Aslanyan, Flemming Nielson, David Parker

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

53 Citations (Scopus)

Abstract

Attack-defence trees are a powerful technique for formally evaluating attack-defence scenarios. They represent in an intuitive, graphical way the interaction between an attacker and a defender who compete in order to achieve conflicting objectives. We propose a novel framework for the formal analysis of quantitative properties of complex attack-defence scenarios, using an extension of attack-defence trees which models temporal ordering of actions and allows explicit dependencies in the strategies adopted by attackers and defenders. We adopt a game-theoretic approach, translating attack-defence trees to two-player stochastic games, and then employ probabilistic model checking techniques to formally analyse these models. This provides a means to both verify formally specified security properties of the attack-defence scenarios and, dually, to synthesise strategies for attackers or defenders which guarantee or optimise some quantitative property, such as the probability of a successful attack, the expected cost incurred, or some multi-objective trade-off between the two. We implement our approach, building upon the PRISM-games model checker, and apply it to a case study of an RFID goods management system.

Original language	English
Title of host publication	29th IEEE Computer Security Foundations Symposium, CSF 2016
Place of Publication	Piscataway, NJ
Publisher	IEEE
Pages	105-119
Number of pages	15
ISBN (Print)	978-1-5090-2607-4
DOIs	https://doi.org/10.1109/CSF.2016.15
Publication status	Published - Jun 2016
Event	29th IEEE Computer Security Foundations Symposium, CSF 2016 - Lisbon, Portugal Duration: 27 Jun 2016 → 1 Jul 2016 Conference number: 29

Publication series

Name	IEEE Computer Security Foundations Symposium (CSF)
Publisher	IEEE Computer Society
Volume	2016
ISSN (Print)	2374-8303

Conference

Conference	29th IEEE Computer Security Foundations Symposium, CSF 2016
Abbreviated title	CSF
Country/Territory	Portugal
City	Lisbon
Period	27/06/16 → 1/07/16

Keywords

EC Grant Agreement nr.: FP7/318003
Security
Semantics
Probabilistic logic
Markov processes
Model checking
EC Grant Agreement nr.: FP7/2007-2013
Games

Access to Document

10.1109/CSF.2016.15

Cite this

@inproceedings{058b06af717c41679669efc0bdb2b03a,

title = "Quantitative Verification and Synthesis of Attack-Defence Scenarios Conference",

abstract = "Attack-defence trees are a powerful technique for formally evaluating attack-defence scenarios. They represent in an intuitive, graphical way the interaction between an attacker and a defender who compete in order to achieve conflicting objectives. We propose a novel framework for the formal analysis of quantitative properties of complex attack-defence scenarios, using an extension of attack-defence trees which models temporal ordering of actions and allows explicit dependencies in the strategies adopted by attackers and defenders. We adopt a game-theoretic approach, translating attack-defence trees to two-player stochastic games, and then employ probabilistic model checking techniques to formally analyse these models. This provides a means to both verify formally specified security properties of the attack-defence scenarios and, dually, to synthesise strategies for attackers or defenders which guarantee or optimise some quantitative property, such as the probability of a successful attack, the expected cost incurred, or some multi-objective trade-off between the two. We implement our approach, building upon the PRISM-games model checker, and apply it to a case study of an RFID goods management system.",

keywords = "EC Grant Agreement nr.: FP7/318003, Security, Semantics, Probabilistic logic, Markov processes, Model checking, EC Grant Agreement nr.: FP7/2007-2013, Games",

author = "Zaruhi Aslanyan and Flemming Nielson and David Parker",

year = "2016",

month = jun,

doi = "10.1109/CSF.2016.15",

language = "English",

isbn = "978-1-5090-2607-4",

series = "IEEE Computer Security Foundations Symposium (CSF)",

publisher = "IEEE",

pages = "105--119",

booktitle = "29th IEEE Computer Security Foundations Symposium, CSF 2016",

address = "United States",

note = "29th IEEE Computer Security Foundations Symposium, CSF 2016, CSF ; Conference date: 27-06-2016 Through 01-07-2016",

}

Aslanyan, Z, Nielson, F & Parker, D 2016, Quantitative Verification and Synthesis of Attack-Defence Scenarios Conference. in 29th IEEE Computer Security Foundations Symposium, CSF 2016. IEEE Computer Security Foundations Symposium (CSF), vol. 2016, IEEE, Piscataway, NJ, pp. 105-119, 29th IEEE Computer Security Foundations Symposium, CSF 2016, Lisbon, Portugal, 27/06/16. https://doi.org/10.1109/CSF.2016.15

Quantitative Verification and Synthesis of Attack-Defence Scenarios Conference. / Aslanyan, Zaruhi; Nielson, Flemming; Parker, David.
29th IEEE Computer Security Foundations Symposium, CSF 2016. Piscataway, NJ: IEEE, 2016. p. 105-119 (IEEE Computer Security Foundations Symposium (CSF); Vol. 2016).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Quantitative Verification and Synthesis of Attack-Defence Scenarios Conference

AU - Aslanyan, Zaruhi

AU - Nielson, Flemming

AU - Parker, David

N1 - Conference code: 29

PY - 2016/6

Y1 - 2016/6

N2 - Attack-defence trees are a powerful technique for formally evaluating attack-defence scenarios. They represent in an intuitive, graphical way the interaction between an attacker and a defender who compete in order to achieve conflicting objectives. We propose a novel framework for the formal analysis of quantitative properties of complex attack-defence scenarios, using an extension of attack-defence trees which models temporal ordering of actions and allows explicit dependencies in the strategies adopted by attackers and defenders. We adopt a game-theoretic approach, translating attack-defence trees to two-player stochastic games, and then employ probabilistic model checking techniques to formally analyse these models. This provides a means to both verify formally specified security properties of the attack-defence scenarios and, dually, to synthesise strategies for attackers or defenders which guarantee or optimise some quantitative property, such as the probability of a successful attack, the expected cost incurred, or some multi-objective trade-off between the two. We implement our approach, building upon the PRISM-games model checker, and apply it to a case study of an RFID goods management system.

AB - Attack-defence trees are a powerful technique for formally evaluating attack-defence scenarios. They represent in an intuitive, graphical way the interaction between an attacker and a defender who compete in order to achieve conflicting objectives. We propose a novel framework for the formal analysis of quantitative properties of complex attack-defence scenarios, using an extension of attack-defence trees which models temporal ordering of actions and allows explicit dependencies in the strategies adopted by attackers and defenders. We adopt a game-theoretic approach, translating attack-defence trees to two-player stochastic games, and then employ probabilistic model checking techniques to formally analyse these models. This provides a means to both verify formally specified security properties of the attack-defence scenarios and, dually, to synthesise strategies for attackers or defenders which guarantee or optimise some quantitative property, such as the probability of a successful attack, the expected cost incurred, or some multi-objective trade-off between the two. We implement our approach, building upon the PRISM-games model checker, and apply it to a case study of an RFID goods management system.

KW - EC Grant Agreement nr.: FP7/318003

KW - Security

KW - Semantics

KW - Probabilistic logic

KW - Markov processes

KW - Model checking

KW - EC Grant Agreement nr.: FP7/2007-2013

KW - Games

U2 - 10.1109/CSF.2016.15

DO - 10.1109/CSF.2016.15

M3 - Conference contribution

SN - 978-1-5090-2607-4

T3 - IEEE Computer Security Foundations Symposium (CSF)

SP - 105

EP - 119

BT - 29th IEEE Computer Security Foundations Symposium, CSF 2016

PB - IEEE

CY - Piscataway, NJ

T2 - 29th IEEE Computer Security Foundations Symposium, CSF 2016

Y2 - 27 June 2016 through 1 July 2016

ER -